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USER CONTROL OF A SECURE WIRELESS COMPUTER NETWORK 



FIELD OF THE INVENTION 

This invention relates generally to wireless computer networks, and more particularly 
5 to establishing a secure wireless network. 

COPYRIGHT NOTICE/PERMISSION 

A portion of the disclosure of this patent document contains material which is subject 
to copyright protection. The copyright owner has no objection to the facsimile reproduction by 
10 anyone of the patent document or the patent disclosure as it appears in the Patent and 
Trademark Office patent file or records, but otherwise reserves all copyright rights 
whatsoever. The following notice applies to the software and data as described below and in 
the drawings hereto: Copyright © 1999, Apple Computer, Inc., All Rights Reserved. 

15 BACKGROUND OF THE INVENTION 

As the number and type of resources available to a networked computer increases, the 
need to connect a computer into a network regardless of the location of the computer also 
increases. Because of the physical limitations inherent in wired networks, wireless network 
connections are growing in popularity. With the increase in the use of wireless networks 
20 comes the requirement to protect the data being exchanges since wireless signals are more 
easily captured than signals transmitted over a physical connection. 
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One approach to the problem of wireless connection security is addressed by the IEEE 
in the 802.11 standard for Wireless LAN Medium Access Control (MAC) and Physical Layer 
(PHY) Specifications, Draft International Standard ISO/EC 8802-11 IEEE P802.il/D10, 14 
January 1999 (hereinafter "the 802.11 standard"). The 802.11 standard specifies an 
5 Infrastructure Network that provides wireless stations access to resources on a wired local area 
network (LAN) by way of an access point, such as a server on the wired LAN. The 
Infrastructure Network can be secured using a shared key to establish a Wired Equivalency 
Privacy (WEP) connection between the access point and each station, such as a desktop, 
laptop, or handheld computer. The shared keys are distributed to the stations through secure 

10 channels outside the wireless network. 

The most security is provided when the access point generates a unique shared session 
key for each station that may potentially connect. The session key is discarded when the 
connection is terminated. Because of the resources required to create and securely transmit a 
unique shared key to each potential station for each session, often an access point uses a 

15 single, common shared key for all stations for a given period of time, such as a day. However, 
each user must be informed of the common shared key for the current time period and must 
program it into the station. Additionally if there is a security breach so that a new common 
shared key is required before the time period expires, every station must be notified of the new 
common shared key, and each station must terminate its current session and establish a new 

20 connection. 
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Thus, the existing security mechanisms for wireless networks are cumbersome for the 
user by requiring constant manual updating of the station to reflect the current shared key, and 
burdensome on the access point by requiring the frequent generation of the shared keys and 
the distribution of those keys outside of the wireless network. 

5 

SUMMARY OF THE INVENTION 

The above-mentioned shortcomings, disadvantages and problems are addressed by the 
present invention, which will be understood by reading and studying the following 
specification. 

10 A secured wireless communications channel between an access point and a station is 

established by a series of message exchanged between the access point and the station. The 
station sends a request for a security preference for the access point to the access point. The 
access point sends the security preference in response to the request when the access point can 
support the channel. When the security preference is shared key, the station generates 

15 authentication information using a first key and sends the authentication information to the 
access point. The access point uses the authentication information to validate the station. If 
the station is valid, the access point encrypts a channel key with a second key and sends the 
encrypted result to the station. The station decrypts the channel key and uses it to establish 
the wireless channel. 

20 The authentication information can be a user name and password, an encrypted 

challenge such as used in the Challenge Handshake Authentication Protocol, or other types of 
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data typically used to authenticate clients on a network. In one aspect, the first and second 
keys are identical keys. In another aspect, the first key is a public key for the access point and 
the second key is a public key for the station. 

Using the invention, the user is required to program the station only once— when it is 
5 initially setup for the wireless network. Because each station must authenticate itself to the 
access point before it can establish the wireless channel using a channel key, the access point 
can quickly secure the network against a security breach of a common channel key by 
disabling the login abilities of a now-invalid user without having to terminate all the other 
stations or having to generate a new common channel key. Thus, the burden on the access 

10 point of generating and distributing the common channel key is greatly reduced and the 
security of the wireless network when using a common channel key is enhanced. 

The present invention describes systems, methods, and computer-readable media of 
varying scope. In addition to the aspects and advantages of the present invention described in 
this summary, further aspects and advantages of the invention will become apparent by 

15 reference to the drawings and by reading the detailed description that follows. 



BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a diagram of one embodiment of a computer system environment suitable for 
practicing the invention; 
20 FIG. 2 is a diagram illustrating a system-level overview of embodiments of the 

invention; 
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FIGs. 3A-B are flowcharts of a method to be performed by a station computer 
according to an embodiment of the invention; 

FIGs. 4A-B are flowcharts of a method to be performed by an access point computer 
according to an embodiment of the invention; and 
5 FIG. 5 is a diagram of an message data structure for use in an implementation of the 

invention. 



DETAILED DESCRIPTION OF THE INVENTION 

In the following detailed description of embodiments of the invention, reference is 
10 made to the accompanying drawings in which like references indicate similar elements, and in 
which is shown by way of illustration specific embodiments in which the invention may be 
practiced. These embodiments are described in sufficient detail to enable those skilled in the 
art to practice the invention, and it is to be understood that other embodiments may be utilized 
and that logical, mechanical, electrical and other changes may be made without departing 
15 from the scope of the present invention. The following detailed description is, therefore, not 
to be taken in a limiting sense, and the scope of the present invention is defined only by the 
appended claims. 

The following description of FIG. 1 is intended to provide an overview of computer 
hardware and other operating components suitable for implementing the invention, but is not 
20 intended to limit the applicable environments. Various details provided in this description are 
specific to Macintosh computer systems. Note, however, that the concepts of the present 
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invention are not limited to application to a Macintosh platform. For example, these concepts 
may also be applied to x86 processor based computer systems, as well as other types of 
computing platforms. 

FIG. 1 illustrates a computer system 1 in which the present invention may be 
5 implemented. While FIG. 1 illustrates the major components of a computer system, it is not 
intended to represent any particular architecture or manner of interconnecting the components; 
such details are not germane to the present invention. 

As shown, the computer system 1 of FIG. 1 includes a microprocessor 10, a read-only 
memory (ROM) 11, random access memory (RAM) 12, each connected to a bus system 18. 

10 The bus system 18 may include one or more buses connected to each other through various 
bridges, controllers and/or adapters, such as are well-known in the art. For example, the bus 
system may include a "system bus" that is connected through an adapter to one or more 
expansion buses, such as a Peripheral Component Interconnect (PCI) bus, or the like. Also 
coupled to the bus system 18 are a mass storage device 13, a display device 14, a keyboard 15, 

15 a pointing device 16, a communication device 17, and non-volatile RAM (NVRAM) 20. A 
cache memory 19 is coupled to the microprocessor 10. 

Microprocessor 10 may be any device capable of executing software instructions and 
controlling operation of the computer system, such as a PowerPC processor, for example, or 
an x86 class microprocessor. ROM 1 1 may be a non-programmable ROM, or it may be a 

20 programmable ROM (PROM), such as electrically erasable PROM (EEPROM), Flash 
memory, etc. 
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Mass storage device 13 may include any device for storing suitably large volumes of 
data, such as a magnetic disk or tape, magneto-optical (MO) storage device, or any variety of 
Digital Versatile Disk (DVD) or compact disk ROM (CD-ROM) storage. The data is often 
written, by a direct memory access process, into RAM 12 during execution of software in the 
5 computer system 1. One of skill in the art will immediately recognize that the term 

"computer-readable medium" includes any type of storage device that is accessible by the 
microprocessor 10. 

Display device 14 may be any device suitable for displaying alphanumeric, graphical 
and/or video data to a user, such as a cathode ray tube (CRT), a liquid crystal display (LCD), 
10 or the like, and associated controllers. Pointing device 16 may be any device suitable for 

enabling a user to position a cursor or pointer on display device 14, such as a mouse, trackball, 
touchpad, stylus with light pen, voice recognition hardware and/or software, etc. 

Communication device 17 may be any device suitable for or enabling the computer 
system 1 to communicate data with a remote processing system over a communication link, 
15 such as a conventional telephone modem, a cable television modem, an Integrated Services 
Digital Network (ISDN) adapter, a Digital Subscriber Line (xDSL) adapter, a network 
interface card (NIC), an Ethernet adapter, a wireless transmitter/receiver, etc. 

It will be appreciated that the computer system 1 is one example of many possible 
computer systems which have different architectures. The computer system of FIG. 1 may be, 
20 for example, an Apple Macintosh computer, such as an Apple iMac computer. FIG. 1 is also 
illustrative of personal computers based on an Intel microprocessor. Such personal computer 
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often have multiple buses, one of which can be considered to be a peripheral bus. Network 
computers are another type of computer system that can be used with the present invention. 
Network computers do not usually include a hard disk or other mass storage, and the 
executable programs are loaded from a network connection into the RAM 12 for execution by 
5 the microprocessor 10. A Web TV system, which is known in the art, is also considered to be 
a computer system according to the present invention, but it may lack some of the features 
shown in FIG. 1, such as certain input or output devices. A typical computer system will 
usually include at least a processor, memory, and a bus coupling the memory to the processor. 
Furthermore, one of skill in the art will immediately appreciate that the invention can 

10 be practiced with other computer system configurations, including hand-held devices, 
multiprocessor systems, microprocessor-based or programmable consumer electronics, 
network PCs, minicomputers, mainframe computers, and the like. The invention can also be 
practiced in distributed computing environments where tasks are performed by remote 
processing devices that are linked through a communications network. 

15 It will be apparent from this description that aspects of the present invention may be 

embodied, at least in part, in software. That is, the technique may be carried out in a computer 
system in response to its microprocessor executing sequences of instructions contained in a 
memory, such as ROM 11, RAM 12, mass storage device 13, cache 19, or a remote storage 
device. In various embodiments, hardwired circuitry may be used in place of, or in 

20 combination with, software instructions to implement the present invention. Thus, the 
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technique is not limited to any specific combination of hardware circuitry and software, nor to 
any particular source for the instructions executed by a computer system. 

In addition, throughout this description, various functions and operations are described 
as being performed by or caused by software code (or other similar phrasing) to simplify 
5 description. However, those skilled in the art will recognize that what is meant by such 
expressions is that the functions result from execution of the code by a processor, such as 
microprocessor 10. 

It will also be appreciated that the computer system 1 is controlled by operating system 
(OS) software which includes a file management system, such as a disk operating system, 

10 which is part of the operating system software. The file management system is typically stored 
in the mass storage 13 and causes the microprocessor 10 to execute the various acts required 
by the operating system to input and output data and to store data in memory, including 
storing files on the mass storage 13. 

A system level overview of the operation of embodiments of the invention is described 

15 with reference to FIG. 2 that illustrates the establishment 200 of a secure wireless network 
connection between a user station 201 and a wireless access point (AP) 203. The user station 
201 and the AP 203 are computers, such as computer system 1 in FIG. 1, that are coupled 
together through wireless transmitter/receivers serving as communication device 17. The AP 
203 is further coupled into a wired local area network (LAN) through an second 

20 communications device 17, such as a network interface card. The wireless network is secured 
by encrypting the data exchanged between the user station 201 and the AP 203 using a 
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channel key that is shared between the user station and the AP and a pre-defined shared key 
algorithm. The channel key can be common for all stations for a given period of time, or can 
be unique to each station. 

The user station 201 sends a request 207 for a connection to the AP 203. If the AP 
5 203 can handle a new connection, it sends its security preference 209, in this case "shared 
key," to the user station 201. The request 207 and the security preferences 209 form an 
inquiry sequence 205 between the station 201 and the AP 203. 

In one embodiment, the station 201 and the AP 203 next perform a key exchange 
sequence 211 based on a pre-determined key exchange security algorithm. Station 201 

10 chooses a secret station key and generates a value 213 using the secret station key and the key 
exchange security algorithm. The station 201 sends the value 213 to the AP 203. The AP 203 
chooses a secret AP key and generates a self-distributed key using the secret AP key and the 
security algorithm. The AP 203 also generates a value 215 using the value 213, the secret AP 
key, and the security algorithm. The AP 203 sends the value 215 to the station 201. The 

15 station 201 uses the value 215, the secret station key, and the security algorithm to calculate 
the self-distributed key. It will be appreciated that the key exchange security algorithm must 
be mathematically constructed in a fashion that permits the station 201 to obtain the self- 
distributed key as described while generating values that cannot be used to determine the 
secret keys of either the station or the AP. One such algorithm is the Diffie-Hellman key 

20 exchange algorithm as incorporated into the Hughes transmission protocol and is as explained 
in more detail below. 
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The station 201 now authenticates itself by transmitting authentication information to 
the AP 203. In the present example, the station 201 encrypts the user name and password 
using the self-distributed key and the pre-defined shared key algorithm to create the 
authentication information 217 that is sent to the AP 203. The AP 203 decrypts the user name 

5 and password and checks them for validity. Assuming the user name and password are valid, 
the AP 203 encrypts the current channel key using the self-distributed key and the pre-defined 
shared key algorithm and sends the encrypted result 219 to the station 201 to complete an 
authentication sequence 221. Once the station 201 has decrypted the current channel key, it 
terminates the setup connection used by the sequences 205, 21 1, 221 and establishes the 

10 secure wireless network 223 by transmitting data to the AP 203 encrypted with the current 
channel key. In an alternate embodiment, a standard encryption algorithm, such as RC4, is 
substituted for the pre-defined shared key algorithm. 

In another embodiment, the key exchange sequence 211 begins with the station 201 
transmitting a public key 213 for the station to the AP 203. The AP 203 responds by 

15 transmitting a public key 215 for the AP to the station 201. The station 201 uses the AP 
public key 215 to encrypt the user name and password, and sends the authentication 
information 217 to the AP 203. The AP 203 decrypts the result 217 using a private key 
corresponding to the AP public key. After validating the user name and password, the AP 203 
encrypts the current channel key with the station public key 213 and transmits the encrypted 

20 result 219 to the station 201. The station 201 decrypts the current channel key using a private 
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key corresponding to the station public key and terminates the setup connection prior to 
establishing the secure wireless network 223 as described above. 

A variation on the public/private key setup connection assumes that the station 201 
and the AP 203 exchange public keys using the key exchange sequence 211 only the first time 

5 a secure wireless network is established between them. Each stores the other's public key for 
subsequent connections. In this embodiment, the AP 203 determines which stored public key, 
if any, is appropriate based on a station identifier contained in the request 207. Alternatively, 
the public keys can be exchanged outside the wireless network. 

In a further embodiment, the authentication sequence 221 uses the Challenge 

10 Handshake Authentication Protocol (CHAP). Each station is assigned a CHAP key which can 
be the self-distributed key created through the key exchange sequence 21 1 as described above, 
or can be an unique key chosen by either the AP 202 or the station 201 and transmitted to the 
other through a mechanism outside the wireless network. When the station 201 requests a 
connection 207, the AP 203 sends a challenge to the station 201 either as part of the security 

15 preferences 209 or as a separate message (not shown in FIG. 2). The station 201 encrypts the 
challenge with its CHAP key to create the authentication information 217 that is sent to the 
AP 203. The AP 203 also encrypts the challenge with the station's assigned CHAP key. If 
the authentication information 217 received from the station 201 matches the challenge as 
encrypted by the AP 203, the station 201 is validated and the AP 203 encrypts the current 

20 channel key with the CHAP key and sends it 219 to the station 201. In this embodiment, the 
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user name and password is not sent to the AP 203 across the wireless network, reducing the 
possibility of their being intercepted. 

The authentication sequence prevents the connection of a station that is fraudulently 
using a common channel key and thus reduces the number of time that a common channel key 
5 must be reissued. Because the user must program the station only once, when it is initially 
setup for the wireless network, the invention reduces user confusion and makes the wireless 
network easier to use. While the invention is not limited to any particular sequence of key 
exchange messages, for sake of clarity a simplified sequence has been described. It will be 
readily apparent that other message sequences that result in the secure transmission of the 

10 authentication information and the shared channel key are equally applicable. 

Next, the particular methods of the invention are described in terms of computer 
software with reference to a series of flowcharts shown in FIGs 3A-B and 4A-B. The 
methods to be performed by a computer constitute computer programs made up of computer- 
executable instructions. Describing the methods by reference to a flowchart enables one 

15 skilled in the art to develop such programs including such instructions to carry out the 
methods on suitably configured computers (the processor of the computer executing the 
instructions from computer-readable media). If written in a programming language 
conforming to a recognized standard, such instructions can be executed on a variety of 
hardware platforms and for interface to a variety of operating systems. In addition, the present 

20 invention is not described with reference to any particular programming language. It will be 
appreciated that a variety of programming languages may be used to implement the teachings 
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of the invention as described herein. Furthermore, it is common in the art to speak of 
software, in one form or another (e.g., program, procedure, application...), as taking an action 
or causing a result. Such expressions are merely a shorthand way of saying that execution of 
the software by a computer causes the processor of the computer to perform an action or a 

5 produce a result. 

Referring first to FIG. 3 A, the acts to be performed by a computer executing the 
station method 300 are shown. The station method 300 begins by sending a request for a 
connection to an AP (block 301). The request message also includes an inquiry regarding the 
security preferences of the AP. The response received (block 303) will indicate whether a 

10 connection is available (block 305) and if so, the type of security preference (block 307). If 
there is no connection available, or if the security preference is not "shared key," the security 
method 300 exits. It will be appreciated that an available connection using a different security 
preference can be established through other methods not germane to the present invention. 

When necessary, a key exchange method is performed by the station computer at block 

15 309 (shown in phantom). The key exchange method for the station corresponds to the actions 
described in FIG. 2 for the key exchange sequence 211. A particular embodiment using the 
Hughes transmission protocol for the key exchange method is described in detail below with 
reference to FIG. 3B. The user name and password are next encrypted using the appropriate 
key, e.g., the self-distributed key or the AP public key, and sent to the AP (block 311). If the 

20 AP responds with an encrypted channel key (block 313), the station can establish the secure 
network connection by transmitting a message encrypted with the channel key as is 
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conventional and not illustrated. Optionally, the method 400 terminates the initial connection 
before establishing the secure network connection (block 315). 

The corresponding method 400 to be executed on a computer acting as the AP is 
illustrated in FIG. 4A. The AP method 400 receives the request from the station at block 401, 

5 determines if there is an available connection (block 403) and responds with the AP security 
preferences if so (block 405). The AP computer next performs a key exchange method at 
block 407 when required. A embodiment for the AP key exchange method using the Hughes 
transmission protocol is described in detail below with reference to FIG. 4B. 

When the AP computer receives the encrypted user name and password (block 41 1), 

10 the method 400 decrypts and validates the user name and password against the valid users for 
the AP (block 411). Assuming the user name and password are valid (block 413), the AP 
method encrypts the current channel key for the station using the appropriate key, e.g., the 
station public key or the self-distributed key, and sends the encrypted result to the station 
(block 413). The participation of the AP in the subsequently-established secure network is 

15 well-known and not illustrated. The embodiment illustrated in FIG. 4 A returns error 

messages to the station at block 417 when a connection is not available or when the user name 
and password cannot be validated. 

Turning now to FIGs. 3B and 4B, one embodiment of key exchange methods 320, 420 
for the station and AP is described. The key exchange is based on the Hughes transmission 

20 protocol which incorporates the Diffie-Hellman security algorithm shown in formula 1 in 
which n, g and p are large integers, such that g is less than p but greater than 1. 
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(formula 1) k - g mod p 

The AP chooses a value for n for each station and generates a unique shared secret key 
k using formula 1. The values of n assigned to the stations are kept secret by the AP 
However, because it is difficult to calculate n given the result of the security algorithm, the 

5 values of g and p do not have to be secret, nor do they have to be unique to each station. In 
one embodiment, the values of g and p are sent to the station by the AP as part of the response 
message at block 307 in FIG. 3A. In an alternate embodiment, the values of g and p are given 
to a user when the user's name and password are initially registered with the AP. The user 
then inputs the values to the station. In still another embodiment, the AP publishes the values 

10 of g and p and all stations use the same values. One advantage of using the same values of g 
and/? for all stations, is that the values can be hardcoded into the stations, and all APs, when 
they are manufactured, eliminating the complexity of distributing the values through the 
network and also eliminating errors inherent in having the user manually input the values to a 
station. 

15 In the interest of clarity, the acts performed by the computers executing the station and 

the AP key exchange methods 320, 420 are described in an interleaved fashion, beginning 

with the key exchange method for the AP 420. 

As described above, the AP selects a random large integer x to be the unique value of n 

for the station (the secret AP key) and generates the self-distributed key k using formula 1 
20 (block 421 in FIG. 4B). Similarly, the station selects a random large integer y (the secret 

station key) and calculates a value Fusing formula 2 (block 321 in FIG. 3B). 
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(formula 2) Y = mod p 

The station sends Y to the AP (block 323). When the AP receives 7, it generates a value X 
using formula 3 (block 423), which it sends to the station (block 425). 

(formula 3) X=Y x modp 
5 The station calculates k from X using formulas 4 and 5 (block 325). 

(formula 4) z~ y 1 

(formula 5) k = X s mod p 

At this point, both the station and the AP are in possession of the self-distributed key k 
and can begin the encrypted authentication process described previously. One of the 
10 advantages of the Hughes transmission protocol is that it places the majority of the calculation 
burden on the station, not the AP, thus allowing the AP to service more stations 
simultaneously. 

The particular methods performed by a station and AP for an embodiment of the 
invention have been described. The method performed by a computer acting as a station has 

15 been shown by reference to a flowchart in FIG. 3 A including all the acts from 301 until 315. 
The method performed by a computer acting as an access point by reference to a flowchart in 
FIG. 4A including all the acts from 401 until 417. Additionally, the use of the Hughes key 
exchange protocol in an embodiment of the invention has been shown by reference to 
flowcharts in HGs. 3B and 4B including all the acts from 321 until 325 and from 421 until 

20 425, respectively. 
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The invention is particularly suited for use with Infrastructure Networks defined by the 
802.11 standard. An Infrastructure Network provides wireless stations access to resources on a 
wired LAN by way of an AP. The AP specifies whether access to the LAN is open to all 
stations ("Open System") or secured through a Wired Equivalent Privacy (WEP) protocol 

5 using a shared key and a WEP encryption algorithm ("Shared Key"). The 802.1 1 standard 
assumes that the shared WEP key is distributed though some secure channel prior to creating 
the WEP connection between the AP and a station. The invention provides such a secure 
channel as described above by exchanging messages between the station and the AP using the 
802.1 1 standard message format. In one embodiment shown in FIG. 5, a data structure 500 

10 for the invention's messages corresponds to an 802.1 1 management frame for authentication 
information. It will be appreciated that only the fields germane to the invention are illustrated 
in FIG. 5 and that one of skill in the art will readily understand the location and use of the 
omitted fields upon reading the following description in light of the 802.11 standard. 

Fields 501 and 503 contains values that define the type and sub-type of the data 

15 structure, respectively, i.e., management and authentication. A station address field 505 
contains a value for the station identity for those messages sent from the station to the AP. 
Fields 507, 509, 511, and 513 collectively form a frame body 515 for the message and contain 
information specific to the message being transmitted as described next. 

The particular messages used by the invention can be divided into two groups. The 

20 first group is referred to as the AP's Choice group and contains the messages 207, 209 of the 
inquiry sequence 205 in FIG. 2. The second group is referred to as the Name and Password 
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group and contains the messages 213, 215 for the key exchange sequence 21 1 and the 
messages 217, 219 for the authentication sequence 221. The message data structures are 
described next with reference to the corresponding messages in FIG. 2. 

The frame body 515 for an inquiry message 207 from the station to the AP specifies 
5 that is it a request for AP's Choice of authentication algorithm in the authentication algorithm 
identifier field 507 and the number "1" in the authentication transaction sequence number 
field 509. The other fields are empty. The AP responds with a security preferences message 
209 containing a value for its preferred method of authentication in field 507, e.g. Shared Key 
or Open System, and a sequence number of "2" in field 509 if a connection is available. If a 

10 connection is unavailable, the message 209 contains an error code in the status code field 511. 

Assuming that a connection is available and that the AP's choice of authentication is 
Shared Key, in an embodiment using the Hughes key exchange protocol, the station sends a 
message 213 containing a value for name and password authentication in field 507 and the 
value of Y (calculated by the station using the Diffie-Hellman algorithm as described above) 

15 in the authentication algorithm dependent information field 513. The sequence number in 

field 509 is "1." The AP responds with a message 215 containing the same value in field 507, 
the value of X in field 513, and a sequence number of "2" in field 509. 

The key exchange sequence 21 1 is now complete because the station has the 
information necessary to calculate the self-distributed key as described previously. The 

20 station begins the authentication sequence 221 by using the WEP encryption algorithm to 

encrypt the user name and password with the self-distributed key and storing the result in field 
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513 of the message 217 and a sequence number of "3" in field 509. Field 507 contains the 
name and password authentication value as before. The AP decrypts the user name and 
password and validates them. If the user name or password are valid, the AP encrypts the 
shared WEP key, i.e. the shared channel key, with the self-distributed key and stores the result 

5 in field 513 to create message 219. The AP also stores the value associated with Shared Key 
authentication in field 507, and a "4" in field 509. If the user name or password are invalid, 
the message 219 contains an error code in the status code field 511 and no data in field 513. 

The establishment of a secured wireless network channel between a station and an 
access point has been described that requires the user to program his or her station only once 

10 while simultaneously enhancing the security of a wireless network that uses a common shared 
key. A particular embodiment has also been described that uses the Hughes transmission 
protocol to reduce the processing burden on the AP, thus enabling the AP to service more 
stations simultaneously. An embodiment applicable for use with an IEEE 802.11 
Infrastructure Network uses a message data structure that conforms to the format specified by 

15 the 802.1 1 standard, allowing use of the invention in such networks while adhering to the 
standard. 

Although specific embodiments have been illustrated and described herein, it will be 
appreciated by those of ordinary skill in the art that any arrangement which is calculated to 
achieve the same purpose may be substituted for the specific embodiments shown. This 
20 application is intended to cover any adaptations or variations of the present invention. 
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The terminology used in this application with respect to networks, both wired and 
wireless, is meant to include all such network environments. Therefore, it is manifestly 
intended that this invention be limited only by the following claims and equivalents thereof. 
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CLAIMS 

WJi^tTs claimed is: 

1 A method of establishing a secure wireless communications channel between an 

2 access point and a station, the channel being encrypted with a channel key, the method 

3 comprising: 

4 sending, by the station to the access point, a request for a security preference for 

5 the access point; 

6 sending, by the access point to the station, the security preference in response to 

7 the request when the access point can support the channel; 

8 generating, by the station, authentication information using a first key when the 

9 security preference is shared key; 

10 sending, by the station to the access point, the authentication information; 

1 1 validating, by the access point, the station using the authentication information; 

12 encrypting, by the access point, the channel key using a second key when the 

13 station is validated; 

14 sending, by the access point to the station, the encrypted channel key; 

15 decrypting, by the station, the channel key in response to receiving the encrypted 

16 channel key; and 

17 sending, by the station to the access point, data encrypted with the channel key to 

1 8 establish the channel . 
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1 2. The method of claim 1, wherein the first and second keys are a self-distributed 

2 key. 

1 3. The method of claim 2, further comprising: 

2 generating, by the access point, the self-distributed key using a security algorithm 

3 when the security preference is shared key; 

4 generating, by the station and sending to the access point, a first value using the 

5 security algorithm in response to receiving the security preference of shared key; 

6 generating, by the access point, and sending to the station, a second value using 

7 the security algorithm and the first value in response to receiving the first value; and 

8 calculating, by the station, the self-distributed key using the security algorithm and 

9 the second value in response to receiving the second value. 

1 4. The method of claim 3, wherein the security algorithm is g n mod p and further 

2 comprising: 

3 obtaining, by the access point, integers x, g and p to generate the self-distributed 

4 key k = g x mod p\ 

5 obtaining, by the station, the integers g and p, and an integer y to generate the first 

6 value Y = g* mod p; 

7 generating, by the access point, the second value X = Y x mod p; and 

8 setting, by the station, z equal to y 1 to calculate the self-distributed key 

9 k = X z mod p. 
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1 5. The method of claim 4 wherein obtaining, by the station, the integers g and p 

2 comprises: 

3 sending, by the access point to the station, the integers for g and p. 

1 6. The method of claim 5, wherein the integers for g and p are sent to the station 

2 when the security preferences are sent by the access point. 

1 7. The method of claim 5, wherein the integers for g and p are sent to the station 

2 when a user name and password for the station are registered with the access point. 

1 8. The method of claim 4 further comprising: 

2 publishing, by the access point, the integers g and p for a set of stations. 

1 9. The method of claim 2 further comprising: 

2 encrypting, by the station, a name and password with the first key to generate the 

3 authentication information; and 

4 decrypting, by the access point, the name and password to validate the station. 

1 10. The method of claim 2 further comprising: 

2 sending, by the access point to the station, a challenge; 

3 encrypting, by the station, the challenge with the first key to generate the 

4 authentication information; 

5 encrypting, by the access point, the challenge with the first key; and 
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comparing, by the access point, the authentication information with the challenge 
encrypted by the access point with the first key to validate the station. 



1 11. The method of claim 1 , wherein the first key is a public key of a public-private 

2 key pair for the access point, and the second key is a public key of a public-private key 

3 pair for the station. 

1 12. The method of claim 1 1 further comprising: 

2 sending, by the access point to the station, the first key; and. 
1 sending, by the station to the access point, the second key. 

1 13. The method of claim 12, wherein the second key is sent to the access point when 

2 the request for the security preference is sent by the station. 

1 14. The method of claim 12, wherein the first key is sent to the station when the 

2 security preference is sent by the access point. 

1 15. The method of claim 1, wherein establishing the channel creates a standard wired 

2 equivalent privacy (WEP) network, and the station and the access point exchange 

3 messages conforming to a format required by the standard that defines a WEP network to 

4 establish the WEP network. 

1 ^6. A method for connecting a station to a secure wireless network comprising: 
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2 sending a request for a security preference to an access point for the secure 

3 wireless network; 

4 generating authentication information for the station when the station receives a 

5 security preference specifying shared key from the access point; 

6 sending the authentication information to the access point; 

7 decrypting a channel key in response to receiving an encrypted channel key from 

8 the access point; and 

9 sending data encrypted with the channel key to the access point. 
1 17. The method of claim 16 further comprising: 

1 generating a first value using a security algorithm in response to receiving the 

2 security preference specifying shared key from the access point; 

3 calculating a self-distributed key using the security algorithm and a second value 

4 in response to receiving the second value from the access point; and 

5 using the self-distributed key to generate the authentication information and to 

6 decrypt the encrypted channel key. 

1 18. The method of claim 17, wherein the security algorithm is formulated as g n mod p 

2 and further comprising: 

3 obtaining integers for y, g and p to generate the first value Y = g y mod p\ and 
1 setting z equal to y 1 to calculate the self-distributed key k = X* mod p. 



1 19. The method of claim 16 further comprising: 
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2 using a first key to generate the authentication information; and 

3 using a second key to decrypt the encrypted channel key. 

1 20. The method of claim 19, wherein the first key is a public key of a public-private 

2 key pair for the access point, and the second key is a private key of a public-private key 

3 pair for the station. 

1 2^ A method of securing a wireless network at an access point comprising: 

2 sending a security preference in response to a request from a station; 

3 validating the station in response to receiving authentication information from the 

4 station; 

5 encrypting a channel key when the station is validated; 

6 sending the encrypted channel key to the station; and 

7 sending data encrypted with the channel key to the station. 

1 22. The method of claim 21 further comprising: 

2 generating a self-distributed key using a security algorithm when the security 

3 preference is shared key; 

4 generating a second value using the security algorithm and a first value in 

5 response to receiving the first value from the station; and 

6 sending the second value to the station. 
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1 23. The method of claim 22, wherein the security algorithm is formulated as g n mod p 

2 and further comprising: 

3 obtaining integers x 9 g and p to generate the self-distributed key k = g x mod p\ and 

4 generating the second value X = Y x mod p. 



1 24. The method of claim 21 further comprising: 

1 using a first key to evaluate the authentication information; and 

2 using a second key to encrypt the encrypted channel key. 



1 25. The method of claim 24, wherein the first key is a private key of a public-private 

2 key pair for the access point, and the second key is a public key of a public-private key 

3 pair for the station. 

1 ^6. A computer-readable medium having stored thereon executable instructions to 

2 cause a processor to perform a station method to connect to a secure wireless network, the 

3 instructions comprising: 

4 sending a request for a security preference to an access point for the secure 

5 wireless network; 

6 generating authentication information for the station when the station receives a 

7 security preference specifying shared key from the access point; 

8 sending the authentication information to the access point; 

9 decrypting a channel key in response to receiving an encrypted channel key from 
10 the access point; and 
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sending data encrypted with the channel key to the access point. 



1 27. The computer-readable medium of claim 26 having further instructions 

2 comprising: 

1 generating a first value using a security algorithm in response to receiving the 

2 security preference specifying shared key from the access point; 

3 calculating a self-distributed key using the security algorithm and a second value 

4 in response to receiving the second value from the access point; and 

5 using the self-distributed key to generate the authentication information and to 

6 decrypt the encrypted channel key. 

1 28. The computer-readable medium of claim 27, wherein the security algorithm is 

2 formulated as g n modp and having further instructions comprising: 

3 obtaining integers y, g and p to generate the first value Y = g y modp; and 
1 setting z equal to y 1 to calculate the self-distributed key k = X 2 mod p. 

1 29. The computer-readable medium of claim 26 having further instructions 

2 comprising: 

3 using a first key to generate the authentication information; and 

4 using a second key to decrypt the encrypted channel key. 
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1 30. The computer-readable medium of claim 29, wherein the first key is a public key 

2 of a public-private key pair for the access point, and the second key is a private key of a 

3 public-private key pair for the station. 

1 ^A. A computer-readable medium having stored thereon executable instruction to 

2 cause a processor to perform an access point method to secure a wireless network, the 

3 instructions comprising: 

4 sending a security preference in response to a request from a station; 

5 validating the station in response to receiving authentication information from the 

6 station; 

7 encrypting a channel key when the station is validated; 

8 sending the encrypted channel key to the station; and 

9 sending data encrypted with the channel key to the station. 

1 32. The computer-readable medium of claim 3 1 having further instructions 

2 comprising: 

3 generating a self-distributed key using a security algorithm when the security 

4 preference is shared key; 

5 generating a second value using the security algorithm and a first value in 

6 response to receiving the first value from the station; and 

7 sending the second value to the station. 
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1 33. The computer-readable medium of claim 32, wherein the security algorithm is 

2 formulated as g n modp and having further instructions comprising: 

1 obtaining integers x, g mdp to generate the self-distributed key k = g x mod p\ and 

2 generating the second value X=Y X mod p. 



1 34. The computer-readable medium of claim 3 1 having further instructions 

2 comprising: 

1 using a first key to evaluate the authentication information; and 

2 using a second key to encrypt the encrypted channel key. 



1 35. The computer-readable medium of claim 34, wherein the first key is a private key 

2 of a public-private key pair for the access point, and the second key is a public key of a 

3 public-private key pair for the station. 

1 ^ t A secure wireless network comprising: 

2 an access point operable for receiving a connection request from a station through 

3 a setup connection, for validating authentication information sent by the station, and for 

4 connecting the station to the network through a channel secured with a shared channel 

5 key; and 

6 a station operable for sending the connection request to the access point, and for 

7 generating the authentication information to send to the access point. 
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1 37. The secure wireless network of claim 36, wherein the access point is further 

2 operable for sending a security preference specifying shared key to the station upon 

3 receiving the connection request, and the station is operable for sending the authentication 

4 information to the station upon receiving a security preference specifying shared key. 

1 38. The secure wireless network of claim 37, wherein the access point is further 

2 operable for encrypting the shared channel key using a self-distributed key for sending to 

3 the station and the station is further operable for decrypting the shared channel key upon 

4 receipt. 

1 39. The secure wireless network of claim 38, wherein the station and the access point 

2 are further operable for calculating the self-distributed key by exchanging messages in 

3 accordance with the Hughes transmission protocol 

1 40. The secure wireless network of claim 36, wherein the station is further operable 

2 for using a first key to generate the authentication information and for using a second key 

3 to decrypt an encrypted shared channel key received from the access point, and the access 

4 point is further operable for using a third key to evaluate the authentication information 

5 and for using a fourth key to encrypt the shared channel key for sending to the station. 

1 41 . The secure wireless network of claim 40, wherein the first and third keys are 

2 public and private keys, respectively, for the access point, and the second and fourth keys 

3 are private and public keys, respectively, for the station. 
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1 ^2. A computer-readable medium having stored thereon a message data structure for a 

2 secure wireless network comprising: 

3 a station address field containing data representing an identifier for a station that 

4 exchanges messages with an access point on the secure wireless network; 

5 a transaction sequence number field containing data representing a sequence 

6 number for a message exchanged between the station identified by the station address 

7 field and the access point; 

8 an authentication algorithm field containing data representing an identifier for a 

9 protocol used by the access point to validate the station identified by the station address 

10 field based on a name and password for the station; and 

11 a dependent information field containing data required to connect the station 

12 identified by the station address field to the secure wireless network. 

1 43. The computer-readable medium of claim 42, wherein the data in the dependent 

2 information field represents key information for encrypting the name and password for 

3 the station identified by the station address field. 

1 44. The computer-readable medium of claim 42, wherein the data in the dependent 

2 information field represents an encrypted name and password for the station identified by 

3 the station address field. 
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1 45. The computer-readable medium of claim 42, wherein the data in the dependent 

2 information field represents an encrypted channel key used to connect the station 

3 identified by the station address field to the secure wireless network. 
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ABSTRACT OF THE DISCLOSURE 

A wireless network is established between a station and an access point for the 
network using a sequence of messages that securely transmit authentication information from 
the station to the access point for validation by the access point, and subsequently transmit a 
shared key necessary to establish the wireless network from the access point to the station 
when the station is validated. 
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(Application Number) Filing Date 



(Application Number) Filing Date 



I hereby claim the benefit under Title 35, United States Code, Section 120 of any United States 
application(s) listed below and, insofar as the subject matter of each of the claims of this application 
is not disclosed in the prior United States application in the manner provided by the first paragraph 
of Title 35, United States Code, Section 1 12, 1 acknowledge the duty to disclose all information 
known to me to be material to patentability as defined in Title 37, Code of Federal Regulations, 
Section 1 .56 which became available between the filing date of the prior application and the national 
or PCT international filing date of this application: 



(Application Number) Filing Date (Status » patented, 

pending, abandoned) 



(Application Number) Filing Date (Status patented, 

pending, abandoned) 

I hereby appoint the persons listed on Appendix A hereto (which is incorporated by reference and a 
part of this document) as my respective patent attorneys and patent agents, with full power of 
substitution and revocation, to prosecute this application and to transact all business in the Patent 
and Trademark Office connected herewith. 

Send correspondence to Shervl Sue Hollowav , BLAKELY, SOKOLOFF, TAYLOR & 

(Name of Attorney or Agent) 
ZAFMAN LLP, 12400 Wilshire Boulevard 7th Floor, Los Angeles, California 90025 and direct 
telephone calls to Shervl Sue Hollowav , (408) 720-8598. 

(Name of Attorney or Agent) 
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I hereby declare that all statements made herein of my own knowledge are true and that all 
statements made on Information and belief are believed to be true; and further that these 
statements were made with the knowledge that willful false statements and the like so made 
are punishable by fine or imprisonment, or both, under Section 1001 of Title 18 of the United 
States Code and that such willful false statements may jeopardize the validity of the 
application or any patent issued thereon. 



Full Name of Sole/First Inventor Leslie Voael III 




Inventor's Signature r ' tfr< JP // Date 

Residence Sausalito. California Citizenship United States 



(City, State) (Country) 



Post Office Address 26 Gate 6 1 /a Rd. 



Sausalito, California 94965 
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APPENDIX A 



William E. Afford, Reg. No. 37,764; Farzad E. Amini, Reg. No. P42,261 ; Aloysius T. C. AuYeung, Reg. No. 
35,432; William Thomas Babbitt, Reg. No. 39,591; Carol F. Barry, Reg. No. 41,600; Jordan Michael 
Becker, Reg. No. 39,602; Bradley J. Bereznak, Reg. No. 33,474; Michael A. Bernadicou, Reg. No. 35,934; 
Roger W. Blakely, Jr., Reg. No. 25,831; Gregory D. Caldwell, Reg. No. 39,926; Andrew C. Chen, Reg. No. 
43,544; Thomas M. Coester, Reg. No. 39,637; Dennis M. deGuzman, Reg. No. 41,702; Stephen M. De 
Klerk, under 37 C.F.R. § 10.9(b); Michael Anthony DeSanctis, Reg. No. 39,957; Daniel M. De Vos, Reg. 
No. 37,813; Robert Andrew Diehl, Reg. No. 40,992; Sanjeet Dutta, Reg. No. P46,145; Matthew C. Fagan, 
Reg. No. 37,542; Tarek N. Fahmi, Reg. No. 41,402; Paramita Ghosh, Reg. No. 42,806; James Y. Go, 
Reg. No. 40,621; James A. Henry, Reg. No. 41,064; Willmore F. Holbrow III, Reg. No. P41,845; Sheryl 
Sue Holloway, Reg. No. 37,850; George W Hoover II, Reg. No. 32,992; Eric S. Hyman, Reg. No. 30,139; 
William W. Kidd, Reg. No. 31,772; Sang Hui Kim, Reg. No. 40,450; Eric T. King, Reg. No. 44,188; Kurt P. 
Leyendecker, Reg. No. 42,799; Michael J. Mallie, Reg. No. 36,591; Andre L Marais, under 37 C.F.R. § 
10.9(b); Paul A. Mendonsa, Reg. No. 42,879; Chun M. Ng, Reg. No. 36,878; Thien T. Nguyen, Reg. No. 
43,835; Thinh V. Nguyen, Reg. No. 42,034; Dennis A. Nicholls, Reg. No. 42,036; Daniel E. Ovanezian, 
Reg. No. 41,236; Marina Portnova, Reg. No. 45,750; Babak Redjaian, Reg. No. 42,096; William F. Ryann, 
Reg. 44,313; James H. Salter, Reg. No. 35,668; William W. Schaal, Reg. No. 39,018; James C. Scheller, 
Reg. No. 31,195; Jeffrey Sam Smith, Reg. No. 39,377; Maria McCormack Sobrino, Reg. No. 31,639; 
Stanley W. Sokoloff, Reg. No. 25,128; Judith A. Szepesi, Reg. No. 39,393; Vincent P. Tassinari, Reg. No. 
42,179; Edwin H. Taylor, Reg. No. 25,129; John F. Travis, Reg. No. 43,203; Joseph A. Twarowski, Reg. 
No. 42,191; Lester J. Vincent, Reg. No. 31,460; Glenn E. Von Tersch, Reg. No. 41,364; John 
Patrick Ward, Reg. No. 40,216; Mark L. Watson, Reg. No. P46,322; Thomas C. Webster, Reg. No. 
P46,154; Charles T. J. Weigeli, Reg. No. 43,398; Kirk D. Williams, Reg. No. 42,229; Steven D. Yates, 
Reg. No. 42,242; and Norman Zafman, Reg. No. 26,250; my patent attorneys, and Justin M. Dillon, Reg. 
No. 42,486; my patent agent, of BLAKELY, SOKOLOFF, TAYLOR & ZAFMAN LLP, with offices located at 
12400 Wilshire Boulevard, 7th Floor, Los Angeles, California 90025, telephone (310) 207-3800, and 
James R. Thein, Reg. No. 31 ,710, my patent attorney. I also hereby appoint Albert P. Cefalo, Reg. No. 
27,315; Mark Aaker, Reg. No. 32,667, Richard Liu, Reg. No. 34,377; Helene Plot ka Workman, Reg. No. 
35,981; and Edward W. Scott, IV, Reg. No. 36,000; my attorneys; of APPLE COMPUTER, INC., located at 
1 Infinite Loop, MS: 3-PAT, Cupertino, California 95014, telephone (408)974-9453, will full power of 
substitution and revocation, to prosecute this application and to transact all business in the Patent and 
Trademark Office connected herewith. 
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APPENDIX B 



Title 37, Code of Federal Regulations, Section 1 .56 
Duty to Disclose Information Material to Patentability 

(a) A patent by its very nature is affected with a public interest. The public interest is best served, 
and the most effective patent examination occurs when, at the time an application is being examined, the 
Office is aware of and evaluates the teachings of ail information material to patentability. Each individual 
associated with the filing and prosecution of a patent application has a duty of candor and good faith in 
dealing with the Office, which includes a duty to disclose to the Office all information known to that individual 
to be material to patentability as defined in this section. The duty to disclosure information exists with respect 
to each pending claim until the claim is cancelled or withdrawn from consideration, or the application becomes 
abandoned. Information material to the patentability of a claim that is cancelled or withdrawn from 
consideration need not be submitted if the information is not material to the patentability of any claim 
remaining under consideration in the application. There is no duty to submit information which is not material 
to the patentability of any existing claim. The duty to disclosure all information known to be material to 
patentability is deemed to be satisfied if all information known to be material to patentability of any claim 
issued in a patent was cited by the Office or submitted to the Office in the manner prescribed by §§1 .97(b)-(d) 
and 1 .98. However, no patent will be granted on an application in connection with which fraud on the Office 
was practiced or attempted or the duty of disclosure was violated through bad faith or intentional misconduct. 
The Office encourages applicants to carefully examine: 

(1) Prior art cited in search reports of a foreign patent office in a counterpart application, and 

(2) The closest information over which individuals associated with the filing or prosecution of a 
patent application believe any pending claim patentably defines, to make sure that any material information 
contained therein is disclosed to the Office. 

(b) Under this section, information is material to patentability when it is not cumulative to 
information already of record or being made or record in the application, and 

(1 ) It establishes, by itself or in combination with other information, a prima facie case of 
unpatentability of a claim; or 

(2) It refutes, or is inconsistent with, a position the applicant takes in: 

(i) Opposing an argument of unpatentability relied on by the Office, or 

(ii) Asserting an argument of patentability. 

A prima facie case of unpatentability is established when the information compels a conclusion that a claim is 
unpatentable under the preponderance of evidence, burden-of-proof standard, giving each term in the claim 
its broadest reasonable construction consistent with the specification, and before any consideration is given to 
evidence which may be submitted in an attempt to establish a contrary conclusion of patentability. 

(c) Individuals associated with the filing or prosecution of a patent application within the 
meaning of this section are: 

(1) Each inventor named in the application; 

(2) Each attorney or agent who prepares or prosecutes the application; and 

(3) Every other person who is substantively involved in the preparation or prosecution of the 
application and who is associated with the inventor, with the assignee or with anyone to whom there is an 
obligation to assign the application. 

(d) Individuals other than the attorney, agent or inventor may comply with this section by 
disclosing information to the attorney, agent, or inventor. 
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